10-24-2019
Is there a way to restrict a user (owner) to execute scripts from a specific directory
Hello,
I have a user Bob on a RHEL 7 server1. Where his script area is "/home/Bob/scripts/" and he is the owner for this directory.
On the server1, there is a NFS mount from another server2, with path as "/global/work/" and Bob is the owner for this directory too in server2. (Same UID and GID on both servers).
Now per policy, the "/global/work/" in Server1 is only for reference purpose, but should NOT execute any scripts from here. Because those are suppose to execute from Server2 only.
So how can I restrict, Bob, the owner of both, not to run any shell script from "/global/work" from server1, but allow him to do all other work as normal.
PS: I have access to edit his profile files.
Thanks!
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi everyone:
I'm trying to make a CRON job that will execute Fridays at 7am. I have the following:
* 7 * * 5
I've been studying up on CRON and I know to have this in a file and then "crontab filename.txt" to add it to the CRON job list.
The CRON part I believe I understand, but I would... (6 Replies)
Discussion started by: Annorax
6 Replies
2. Shell Programming and Scripting
Hi all,
Is there a way to prevent users from being able to execute commands less a select few? For instance, I wish to allow the user to be only able to execute 1 command, which is exec a.sh. He should not be able to do simple stuff such as ls, cd, rm, cat, etc.
Can this be achieved?
... (1 Reply)
Discussion started by: rockysfr
1 Replies
3. UNIX for Advanced & Expert Users
Hi All,
It will be very great if you can help me in this issue. Thanks in advance.
I need to enable FTP on a solaris9 server. I need to create a new user some "xxxxxx" and he can only FTP the files to and from between /tftpboot directory and network devices. Other users should not... (8 Replies)
Discussion started by: santhoshkumar_d
8 Replies
4. UNIX for Dummies Questions & Answers
specifically - I don't need to restrict a user to a single directory - but I want them to be "ROOTED" to their home directory.
so if my home directory is /home/onlyme
when I login - if I do a pwd - I want to see:
/
but in real life I will be in /home/onlyme - it just appears as root to... (10 Replies)
Discussion started by: itobenon
10 Replies
5. UNIX for Dummies Questions & Answers
Hi
I need to restrict one user to see only his home directory and
one more directory how i can do this in his profile.
The OS is Red hat linux
I create a user -- tec
and group calle --tec
one the user log in he will see
/home/tec
and he need to see /opt/load
this dirctory... (6 Replies)
Discussion started by: aboorkuma
6 Replies
6. Linux
Hi Gurus ,
I hope you are doing great .
Other than owner of the file , OTHERS and GROUP should be restricted from read or write a file created by the owner.
OTHERS and GROUP should be only allowed to execute the file.
Thanks in advance. (8 Replies)
Discussion started by: palanisvr
8 Replies
7. Red Hat
Hi
I have a Fedora10 server and i need a particular user to view files only in a particular folder.
All other files in other folders having "read" permission for all shouldn't be accessible to this user.
Please let me know if ther's a way.
Thanks,
HG (5 Replies)
Discussion started by: Hari_Ganesh
5 Replies
8. Solaris
I am using Solaris 10 on SPARC.
SunOS ddw 5.10 Generic_139555-08 sun4u sparc SUNW,SPARC-Enterprise
I have put some text files in a directory '/u01/network'
I want to create a ftp user which can just read the files in the network directory. The ftp user shouldn't be able to navigate or see... (4 Replies)
Discussion started by: fahdmirza
4 Replies
9. Solaris
Hi all,
I want to create a new user and grant him ONLY transfer files access to a specific directory where he can only upload and read the files. He should be restricted to this activity only.
Regards (6 Replies)
Discussion started by: gilldn
6 Replies
10. AIX
hi,
I want to restrict some user access to only 1 directory (including all sub-directories/files in it).
can you please explain me, how can we do this?
example;
Filesystem GB blocks Used Free %Used Mounted on
/dev/hd4 2.61 1.02 1.59 40% /
/dev/hd2 ... (7 Replies)
Discussion started by: aaron8667
7 Replies
LEARN ABOUT ULTRIX
ntp.conf
ntp.conf(5) File Formats Manual ntp.conf(5)
Name
ntp.conf - Network Time Protocol configuration file
Description
The file is the configuration file for the Network Time Protocol (NTP) daemon, This file must be configured on your system before running
Any host names that you specify in the file must have an entry in the file, or an entry in the master database, if the database is being
served to your system by BIND/Hesiod or Yellow Pages.
The file has four entry formats:
trusting no
This entry guarantees that your system synchronizes only to the NTP servers identified in the peer and server entries specified. Dig-
ital recommends that all systems include the entry.
peer server
This entry identifies server as one of the NTP servers that your system trusts, and from which your system will accept time synchro-
nization. Your system may also provide time synchronization to this server. Servers can be identified by host name or internet
address.
NTP servers should be configured with entries.
server server
This entry identifies server as one of the NTP servers that your system trusts, and from which your system will accept time synchro-
nization. Your system can not provide time synchronization to this server. Servers can be identified by host name or internet
address.
NTP clients should be configured with entries.
peer /dev/null LOCL 1 -5 local
This entry identifies your system as a local reference clock. A local reference clock is the most accurate system clock available at
your site. If you receive time synchronization from the Internet NTP service, you should not include this entry on any of your sys-
tems. At most, one system in a set of nodes running should be identified as a local reference clock.
A host which specifies this entry should not specify any or entries.
Examples
This is a sample configuration file for an NTP client which receives time synchronization from the NTP servers: and Lines beginning with a
number sign (#) are comments.
#
# NTP Configuration File
# This file is mandatory for the ntpd daemon
#
#
#
# ** A L L **
#
# "trusting no" prevents this host from synchronizing
# to any host that is not listed below. It is recommended
# that all hosts include the line "trusting no".
#
trusting no
#
#
# ** S E R V E R **
#
# If you are configuring a server, use "peer" entries to
# synchronize to other NTP servers. For example, server1,
# server2, and server3.
#
#peer server1
#peer server2
#peer server3
#
#
#
#
# ** C L I E N T **
#
# If you are configuring a client, use "server" entries to
# synchronize to NTP servers. For example, server1, server2,
# and server3.
#
server server1
server server2
server server3
#
#
#
# ** L O C A L R E F E R E N C E C L O C K **
#
# If you are configuring a local reference clock, include the
# following entry and the "trusting no" entry ONLY.
#
#peer /dev/null LOCL 1 -5 local
#
See Also
ntp(1), ntpd(8), ntpdc(8)
RFC 1129--Internet time synchronization: The Network Time Protocol
Introduction to Networking and Distributed System Services
ntp.conf(5)